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We analyse the relationship between nominal algebra and nominal rewriting, giving a new and con- 
cise presentation of equational deduction in nominal theories. With some new results, we characterise 
a subclass of equational theories for which nominal rewriting provides a complete procedure to check 
nominal algebra equality. This subclass includes specifications of lambda-calculus and first-order 
logic. 

1 Introduction 

It is very common, when formally denning a programming language, computation model, or deduction 
system, to appeal to operators with binding like V, A, V, or J. We are therefore interested in frameworks 
with support for the specification, analysis and evaluation of operators with binding mechanisms. Such 
frameworks are needed not only in logic and theoretical computer science (where binders like V, A and 
V are familiar) but also to mechanise mathematics, linguistics, systems biology, and so on. 

First, we need to define the notion of a binder. One answer is to identify all binding with functional 
abstraction X. This approach is taken in the definition of higher-order abstract syntax [PE88, DPS97], 
higher-order rewriting [MN98], and combinatory reduction systems [KvOvR93], amongst others. Since 
higher-order unification is undecidable, and it plays a key role in rewriting (e.g., rewrite steps are com- 
puted using matching, critical pairs are computed using unification), most higher-order rewrite for- 
malisms only use higher-order patterns [Mil91], a decidable sublanguage. This fact already suggests 
that names and binding might be a simpler concept, and computationally more tractable, than raw func- 
tional abstraction. 

In fact, it has been shown that higher-order patterns correspond almost exactly to nominal terms [LV08, 
DGM10]. This correspondence is robust, and extends to solutions of unification problems [DGM10], 
and also in the presence of arbitrary equality theories [GM09b]. Unification and matching of nominal 
terms are decidable [UPG04] and efficient (see [CF09] for a linear-time nominal matching algorithm, 
and [CallO, LV10] for efficient unification algorithms). Nominal terms have been the basis of rewriting 
[FG07], logic programming [CU08], and algebra [GM09a]. 

Nominal terms are like first-order terms ('standard' syntax) but come supplied with atoms; a kind of 
bindable constant with semantics discussed in [GP01]. Atoms display special behaviour which will be 
developed in the body of the paper. For now, we illustrate the use of nominal terms to express a theory 
of j3 r/ -equivalence in nominal algebra. 

Suppose term-formers lam : 1 (the number indicates arity) and app : 2. Then: 



Here a and b are atoms, [a]- is atoms-abstraction, with special properties we discuss later, and X is a 
variable which corresponds to meta-variables like t above. But X is not a meta- variable; it is a variable 
in nominal terms. To avoid confusion, we call variables in nominal terms unknowns. 



\am([a]\am([b]app(a,b))) represents the A -term Xf.Xx.fx 
lam([a]lam([&]X)) represents a A -term schema Xx.Xy.t 
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We can define j3 -reduction and 77 -reduction as follows (see [FGM04] for an alternative nominal 
rewriting system that uses an explicit substitution operator): 

app(lam([ fl ]app(X,X')),y) -> 

app(app(lam([a]X',y), app(lam([a]X),F))) 
app(lam([a]a),X) — > X 
fl#7h app(lam([a]y),X) -> Y 

bWY h app(lam([a]lam([6]X)),y) -> lam([2>]app(lam([a]X),F)) 
a#X\- lam([a]app(X,a)) — > X 

We obtain a nominal algebra theory just by replacing — > with =. 

Setting aside the verbosity of the syntax above, what we would like the reader to take from this 
example is how close the specification is to what we write in mathematical discourse. A freshness side- 
condition a#X formalises the usual condition x $fv(u), using an atom a for x and an unknown X for the 
metavariable u. 

This motivates nominal algebra [GM06, GM09a] and also nominal rewriting [FGM04, FG07] ; the- 
ories of equality and rewriting respectively for nominal terms (see also [CP07], though this does not 
use nominal terms). The resulting theories have semantics in (nominal) sets and good computational 
properties; these are investigated in several other papers by the authors and others. 

The relationship between equational reasoning and rewriting is well understood in the first-order 
case where terms do not include binders: If an equational theory E can be presented by a terminating 
and confluent rewrite system then equality modulo E is decidable [DJ89, BN98]. Even if the rewrite 
system is not confluent it may still be possible to use rewriting if the system can be completed by adding 
new rules [KB70] ; implementations of equational logic have been based on these observations [BM79, 
0'D87, GSH+92, McC97, McC03]. 

However, in systems with binding the situation is different. Semi-automatic tools exist, many relying 
on higher-order formalisms that use the A -calculus as meta-language, but since higher-order unification 
is undecidable in general, higher-order rewriting frameworks need to restrict the form of the rules to 
achieve a decidable rewriting relation. This makes it difficult to define completion procedures for higher- 
order rewriting systems. For nominal systems, the relationship between rewriting and equality is not 
straightforward and has not been established yet. This paper fills this gap. 

The main contributions of this paper are: 

• We give new presentations of nominal rewriting and nominal algebra that are significantly more 
concise than those in [FG07, GM09a]. This gives a clear and 'user-friendly' overview of the two 
systems. 

• We identify a completeness result (Theorem 4.4) which shows a precise connection between nom- 
inal rewriting and nominal algebra. In other words, we fill the gap mentioned above. 

• We identify a stronger completeness result for a subset of nominal rewriting already investigated 
for its good computational properties [FG07]: closed rewriting. Closed rewriting is sound and 
complete for nominal algebra (Theorem 5. 19), in a particularly direct manner. 

Note that the collection of closed nominal terms is at least as expressive as other systems in the literature, 
including Combinatory Reduction Systems [KvOvR93] and Higher-Order Rewriting Systems [MN98]. 
This is discussed in [FG07]. However, nominal rewrite/algebra systems exist that do not fall into 
the closed collection. For instance, the natural specification of TT-calculus (Open) labelled transition 
[MPW92] displays a gensym-like behaviour that, as it happens, is not captured by closed nominal terms 
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(but can be defined using nominal rewriting rules): P — > Q implies vb.P — > Q. 

So both our completeness results are relevant. We cannot say one is 'right' and the other 'wrong'; 
nominal terms are more expressive but fewer things are true of them relative to closed nominal terms. 
Both have good theorems relating rewriting with equational reasoning, which we describe in this paper. 

The rest of the paper is organised as follows: In Section 2 we recall the basic notions of nominal 
syntax. Section 3 gives a new and uniform presentation of nominal algebra and nominal rewriting. Sec- 
tion 4 compares nominal algebra and rewriting and establishes a first completeness result. Section 5 
discusses closed nominal rewriting as an efficient mechanism to implement deduction in nominal the- 
ories, and establishes the soundess and completeness of nominal rewriting for equational deduction in 
theories presented by closed rules. Using this result, we give an algorithm to implement nominal algebra 
in an efficient way. We conclude the paper in Section 6. 

2 Syntax and a-equivalence 

Nominal terms were introduced in [UPG04] as a formal syntax for the specification of systems with 
binding. In this section we recall the main notions of nominal syntax; for more details and examples we 
refer the reader to [UPG04, FG07]. 

2.1 Terms and signatures 

Definition 2.1. Fix disjoint countably infinite collections of atoms, unknowns (or variables), and term- 
formers (or function symbols). We write A for the set of atoms; a,b,c,... will range over distinct atoms. 
X, Y,Z, . . . will range over distinct unknowns, f , g, . . . will range over distinct term-formers. We assume 
that to each f is associated an arity n which is a nonnegative number; we write f : n to indicate that f has 
arity n. A signature £ is a set of term-formers with their arities. 

Definition 2.2. A permutation % is a bijection on atoms such that nontriv(n) = {a | n(a) ^ a} is finite. 

We write {a b) for the swapping permutation that maps a to b, b to a and all other c to themselves, and 
id for the identity permutation, so id{a) = a. The notation % o %' is used for functional composition 

of permutations, so (non')(a) = 7i(n'(a)), and 7i~ l for inverse, so n{a) = b if and only if a = 7T 1 (b). 

Definition 2.3. (Nominal) terms are inductively defined by: 

s,t,l,r,u ::= a \ K-X \ [a]t \ f(/i,. ..,/„) 

We write = for syntactic identity, so t = u when t and u denote the same term. 

A term of the form [a]t is called an (atom-)abstraction; it represents 'x.e' or 'jc.0' in expressions 
like 'Xx.e' or 'Vje.0'. We define an a-equivalence relation rj« later, in Definition 2.8. 

2.2 Permutation and substitution 

Definition 2.4. An (atoms) permutation action % ■ t is defined by: 

K-a = n(a) K ■ (n'-X) = (ko it') X 

K-[a]t = [n{a)}[K-t) 7t-f(h,...,t n ) = f{n-t\,...,K-t n ) 

This rule can be fit into the nominal algebra/rewriting framework, e.g. with a bit of sugar as follows: (Z, P™Q)-> 
(Z, P°K Q, vb.P — > Q). We are interested in expressivity, not elegance, at this point. 
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A h <2#& Ah a#[a]? 
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AH[4~«[a]« Ah f(*i, ...,*„) k b f(iti, 



Figure 1: Freshness and a-equality 

A substitution (on unknowns) a is a partial function from unknowns to terms with finite domain. 
6 and a will range over substitutions. 

An (unknowns) substitution action fa is defined by: 

ao = a (it-X)o = it-X (X dom(a)) 

{[a]t)a= [a](to) (it -X)a = it ■ a(X) \xedom\a)) 

f(t l ,...,t n )o = f(ho,...,t n o) 

Henceforth, if X dom(a) then <j(X) denotes id-X. 

We write id for the substitution with dom{id) = 0, so that tid = t. When we write id, it will be clear 
whether we mean 'id the identity substitution' or 'id the identity permutation' (Definition 2.2). 
If a and 6 are substitutions, o oQ maps each X to (Xa)6. 
Lemmas 2.5, 2.6 and 2.7 are proved by routine inductions (see [FG07]). 

Lemma 2.5. (71071') -t = it- (it' -t) and id t = t. 

Lemma 2.6. it ■ (to) = (it ■ t)o. 

Lemma 2.7. t(oo 6) = (to)d. 



2.3 a-equivalence 

The native notion of equality on nominal terms is a-equivalence. For comparison, that of first-order 
terms is syntactic identity, and that of higher-order terms is /3- or possibly j8t] -equivalence. 

Definition 2.8. A freshness (constraint) is a pair a#t of an atom a and a term t. We call a freshness of 
the form a#X primitive, and a finite set of primitive freshnesses a freshness context. A, T and V will 
range over freshness contexts. 

We may drop set brackets and write a#t,b#u for {a#t,b#u}. Also, we may write a#t, u for a#t,a#u, 
and a,b#t for a#t,b#t. 

A freshness judgement is a tuple A h a#t of a freshness context and a freshness constraint. An 
a-equivalence judgement is a tuple Ahs sa a t of a freshness context and two terms. The derivable 
freshness and a-equivalence judgements are defined by the rules in Figure 1. 
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Definition 2.9. The functions atms(t) and unkn(t) will be used to compute the set of atoms and unknowns 
in a term, respectively. They are defined by: 



Definition 2.10. Later in this paper, starting with Definition 5.5, we find it useful to write atms(X) and 
unkn{X) for X something more complex than a term — e.g. a list (as in 'atms{k,s,ty), a term-in- 
context (as in 'unkn(V h Z)'), or a substitution. By this we mean the atoms or unknowns appearing 
anywhere within the brackets. So atms(A,s,t) means {a \ a#X 6 A for some X} Uatms(s) Uatms(t). 
Also, atms(B) = \J{atms(6(X)) \ X G dom(d)}. 

Lemma 2.11 (Strengthening). Suppose a g" atms{s,t). Then: 

• A, a#X h b#s implies A h b#s. 

• A, a#X h s ~ a ? implies Ah s ~« 

Proof. By induction on the rules in Figure 1 , using the fact that in all cases the hypotheses of rules use 
only atoms already mentioned in the conclusions. □ 

Definition 2.12. Suppose S is a set of freshness constraints and 6 is a substitution. Define Sd = {a#(sd) \ 
a#s £ S}. 

Lemma 2.13 (Weakening). Suppose A h A' a. Then 

• A' h b#s implies A h b#sO. 

• A' h s ~ a t implies Ah so ~ a to. 

In particular, taking o = id and A' = A,T, we obtain: 

• Ah b#s implies A, T h b#s. 

• Ah s ~ a t implies A,Fh s ~ a t. 

Proof. By routine inductions on the rules in Figure 1 . □ 

3 Nominal algebra and nominal rewriting 

In this section we define notions of equational reasoning and rewriting over nominal terms. Nominal 
terms have a native notion of binding, which theories inherit and can exploit to axiomatise properties of 
binding operators (e.g. it is direct and natural to axiomatise /3 -equivalence [GM08b]). 

Definition 3.1. We introduce two new judgement forms: 

• An equality judgement is a tuple A h s = t of a freshness context and two terms. 

• A rewrite judgement is a tuple A h s — > t of a freshness context and two terms. 

We may write '0 h' as 'P. 

We also introduce two notions of theory — one for equality judgements, and one for rewrite judge- 
ments: 

• An equational theory T = (E,Ax) is a pair of a signature £ and a possibly infinite set of equality 
judgements Ax in that signature; we call them axioms. 



atms(a) 
atms([a]t) 




atms{n -X) 
atms(f(ti,...,t n )) 

unkn{ll-X) 
unkn(f(t[,. . .,?„)) 




unkn{a) 
unkn([a]t) 



\JjUnkn(tj) 
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• A rewrite theory R = (L,Rw) is a pair of a signature £ and a possibly infinite set of rewrite 
judgements Rw in that signature; we call these rewrite rules. 

We may omit E, identifying T with Ax and R with Rw when the signature is clear from the context. 

Example 3.2. The rewrite rules (j3 app ), (j3 va r)» (j3e), (jSiam), and (77) define the rewrite theory /3tj for j3- 
and ^-reduction in the A -calculus. 

Note the use of a freshness context in rule (jSiam) to ensure that free A -calculus variables are not 
captured. In rule Q3 e ) we use a freshness context to discard the argument when it is not needed. In the 
v\ rule, the freshness context formalises the usual condition on the bound variable. See [FG07] for more 
examples of nominal rewrite rules. 

If we replace — > by = we obtain an equational theory. More examples of nominal equational theories 
can be found in [GM09a]. 

Definition 3.3. A position C is a pair (s,X) of a term and a distinguished unknown X that occurs precisely 
once in s, as id-X. If C = (s,X) then we write C[t] for s[X i-> t]. 

We are now ready to define notions of derivable equality, and rewriting: 

Definition 3.4. Below we write A h ((j>\, . . . , 0„) for the judgements A h (j>u . . . , A h <j>„. 

• Nominal rewriting: The one-step rewrite relation A h s — > t is the least relation such that for every 
(VhMr)gR, freshness context A, position C, term s', permutation n, and substitution 6, 

s = C[s'\ Ah(V0, s'^„7V-(ie), C[K-(rd)]^ a t) 



A h s -> t 



(Rewvhi^r). (1) 



The rewrite relation A h R s — > t is the reflexive transitive closure of the one-step rewrite relation, 
that is, the least relation that includes the one-step rewrite relation and such that: 

- for all A and s: A h R s — > s' if A h s « a s' (the native notion of equality of nominal terms is 
a -equality); 

- for all A, s, t, u: A h R s — > t and A h R t — > u implies A h R s — > u. 

If A h R s — > t holds, we say that s rewrites to t in the context A. 

• (Nominal algebra) equality: A h T s = t is the least transitive reflexive symmetric relation such 
that for every (V h I = r) 6 T, freshness context A, position C, permutation n, substitution 6, and 
fresh r (so if a#X G T then a atms(A, s,t)), 

A,rh(V0, s^ a C[K-(W)], C[K-(rd)]^ a t) (k . 

i — ^(Axi V hl=r)- (2) 

Ah T s = t 

We illustrate (1) and (2) with examples. 

Example 3.5. • Consider the theories h [a]X — > X and h [a]X = X. We can show that [b] [a]a rewrites 
to [a]b in the empty freshness context, that is, l~ h | a | X ^ x [b] [a]a — > [a]b. For this, we first use reflex- 
ivity to transform [b] [a]a into [a] [b]b and then apply the rewrite rule at position C = ([a]X,X). We 
can also show l~ h | a | X=x [^][a , ]a r = [a]b. 

• Consider the rewrite theory j3rj defining j8- and T] -reduction in the A -calculus (see the Introduc- 
tion). We can show that app(lam([fl , ]app(a,a)),&) — > app(b,b) using rules (j8 app ) and (j3 var ). 



M. Fernandez and M. Gabbay 



43 



3.1 Equivalence with the literature 

The notions of equality and rewriting in (1) and (2) correspond to those in [GM09a] and [FG07] re- 
spectively. However, the presentation of (1) and (2) is original to this paper. Arguably, Definition 3.4 
contains the clearest presentation of nominal rewriting and nominal algebra so far. It is certainly the most 
concise and it makes it easier to compare and constrast the two notions — to bring out what they have in 
common, and what is different. 

Some checking needs to be done to verify that (1) and (2) coincide with nominal rewriting and 
nominal algebra as presented in the literature. All the main issues are indicated in the following two 
short sketches: 

Remark 3.6 (Nominal rewriting). (1) corresponds to Definition 47 in Subsection 5.2 of [FG07]. The 
correspondence is clear except that Definition 47 does not include a %. This is because in [FG07] rewrite 
theories (Definition 3. 1 in this paper) have the additional property that they be equivariant (Definition 4.2 
of [FG07]). This means that if R € R then R n £ R {R n is R with % applied to all atoms). It is not hard 
to use Lemma 41 and part (3) of Theorem 50 in [FG07] to demonstrate that equivariance has the same 
effect as the % in (1), and indeed, if A h R s — > t then Ah R % ■ s — > % • t. 

Remark 3.7 (Nominal algebra). (2) corresponds to Definition 3.10 and to the rules in Figures 1 and 2 in 
[GM09a]. The C corresponds to the congruence rules (congQ) and (congf); the % corresponds to the % 
in (ax) (modulo the same issue with r 71 versus % ■ r mentioned in Remark 3.6); (perm) is built into 

Figure 2 of [GM09a] has an extra rule (fr) , which generates a fresh atom. This corresponds to the 
fresh context T in (2). However, in (2) the fresh atoms are generated 'all at once', whereas in Figure 2 of 
[GM09a] fresh atoms may be generated at any point during equality reasoning. 

We inspect the rules in Figure 2 of [GM09a] and see that we can commute an instance of (fr) down 
through the other derivation rules; (fr) is a structural rule, which adds freshness assumptions and does 
not affect the subgoal to be proved. 

If extra atoms in the derivation 'accidentally clash' with the atom generated by the instance of (fr), 
then we rename the fresh atom in the subderivation to be 'even fresher' . The reader familiar with the 
proof of weakening for first-order logic can recall how we rename the bound variable in the V-right rule 
to be fresh for the weakened context; the proof obligation here is identical and does not involve any 
'nominal' elaborations. 

Formally, an explicit inductive argument or the principle of ZFA equivariance [GP01] prove that 
fresh atoms do not matter up to renaming, so the renamed subderivation is still a valid subderivation. 
The interested reader is also referred to Lemma 5.10 in [GM08a] where a similar result is stated and 
proved in full detail, of a more complex system. 

4 Soundness and completeness of nominal rewriting with respect to nom- 
inal algebra 

Theorem 4.2 and Theorem 4.4 describe how nominal rewriting relates to nominal algebra. 

Definition 4.1. Suppose T is an equational theory and R is a rewrite theory. We say that R is a presenta- 
tion of T if 

v^ s = t£j (Vhs^feR v vh/^ieR). 

We write A |- R s «->• t for the symmetric closure Ah R i->(. 
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Proposition 4.2 (Soundness). Suppose R is a presentation of J. 
Then A h R s -H- 1 implies A h T s = t. 

Proof. By a routine induction on the derivation Ah R jf>(. We briefly sketch the case of (Rewvhi^r) 
for V h I = r G T. 

Suppose for some C, 0, and tt, 

ff = C[y] and Ah(V0, / rj„ w (/0), C[w- (r9)] « a f). 

Let r = 0. It is a fact that if A h s' 71 • (Z0) then A h C[s'] w a C[rc • (Z0)]. We now easily obtain an 
instance of (Axivhi=r)- D 

Remark 4.3. Suppose R is a presentation of T. It is not necessarily the case that A h T s = t implies 
Ah R m/. To see this, take T = {a#X hl = f (X)} and R = {a#X hX^ f(X)}. Then h T X = f (X) 
(using (Axi) with F = a#X), but \f R X<r>f(X). 

Theorem 4.4 (Quasi-Completeness). Suppose R is a presentation of J. 

Then Ah T J = t implies that there exists some fresh T (so ifa#X G T then a G" atms(A, s,t)) such that 
A,TI- R s^t. 

Note the 'fresh P on the side of nominal rewriting. 

Proof. We work by induction on the derivation of A h T s = t, write it IT. 

The interesting case is (Axi V hi=r) f° r some V h / = r G T, of course. There is only one argument in 
the proof that is not obvious: IT is finite, so let us consider all the finitely many instances of (Axi) in IT; 
write them I\, . . ., I n . For each 1 < i < n, l{ will involve V,- h = r\, C,, %i, 0,-, and a context T,. (Note 
that A is constant across all these instances.) 

Atoms in T,- do not feature in A, C\, %u and 0, — they are 'locally fresh'. However, they might 
'accidentally' feature elsewhere in IT. It is a fact that because the atoms in T, do not feature in A, Q, %i, 
and 6t, they do not feature in the conclusion of /,-. Therefore, it is a fact that we can rename these atoms 
so that they are fresh for all parts of IT other than hypotheses of instances of (Axi), that is, there exists 
a derivation IT of A h T s = t such that for each 1 < i < n the respective T- in respective instances /• of 
(Axi) are fresh not only locally for the conclusion of but also fresh globally for all conclusions of all 
Ij for 1 < j < n in IT. This 'global freshness' condition is clearly preserved by taking subderivations. 
We now take T = Ui H' an( ^ tne P ro °f i s by a routine induction on IT. Thus, an upper bound on T is the 
maximal size of the T, . 

Note that although (Rewvhi=r) appears to be more restrictive than (Axiyhi=r) i n that (Rew) requires 
s = C[s'] and s' a-equivalent to an instance of a left4iand side, this is not an issue because the rewrite 
relation is transitive and includes the a-equivalence relation. □ 

5 Closed rewriting and nominal algebra 

Theorem 4.4 establishes a completeness result for nominal rewriting modulo additional freshness con- 
straints (the extra T). 

This mismatch between nominal rewriting and nominal algebra could be solved by including fresh 
atom generation in the definition of a rewriting step. But this comes at a cost — the freshness context 
may change along a rewrite derivation, and with it also the notion of a-equivalence — and is not needed 
for large classes of systems, as we show below. 
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In this section, we show that closed nominal rewriting is complete for nominal algebra equality when 
all the axioms are closed. 

Although there are interesting systems, such as the axiomatisation of the 7r-calculus [FG05, FG07], 
which are not closed, this result has many applications: all the systems that arise from functional pro- 
gramming (including the axiomatisation of the A -calculus) are closed, and all the systems that can be 
specified in a standard higher-order rewriting formalism are also closed (see [FG05]). 

5.1 The definition of closed rules and closed rewriting 

Definition 5.1 (Terms-in-context and nominal matching). A term-in-context is a pair A h s of a freshness 
context and a term. 

A nominal matching problem is a pair of terms-in-context 

(V h I) (A h s) where unkn(V h I) D unkn(A h s) = 0. 

A solution to this problem is a substitution a such that 

AhVa and Ahla^J and dom(o) C unkn(V h I). 

Remark 5.2. Nominal matching is decidable [UPG04], and can be solved in linear time [CF08]. 

Definition 5.3 (Freshened variants). If t is a term, we say that t is a freshened variant of t when t" has 
the same structure as t, except that the atoms and unknowns have been replaced by 'fresh' atoms and 
unknowns (so they are not in atmsit) and unkn{t), and perhaps are also fresh with respect to some atoms 
and unknowns from other syntax, which we will always specify). We omit an inductive definition. 

Similarly, if V is a freshness context then V" will denote a freshened variant of V (so if a#X € V then 
a"#X" 6 V", where a" and X" are chosen fresh for the atoms and unknowns appearing in V). 

We may extend this to other syntax, like equality and rewrite judgements. 

Note that if V" h P -> f" is a freshened variant of V h / -)■ r then unkn(V" h l" ->■ r") n unkn(V h I -» 
r) = 0. 

Example 5.4. For example: 

• [a"} [b"]X" is a freshened variant of [a] [b]X, a^X" is a freshened variant of a#X, and h a" -)■ b" 
is a freshened variant of h a — > b. 

• Neither [a"] [a M ]X" nor [a"] [b"]X are freshened variants of [a] [b]X: the first, because we have wrongly 
identified two distinct atoms when we freshened them; the second, because we did not freshen X. 

Definition 5.5. A term-in-context V h / is closed if there exists a solution for the matching problem 

(V"h/") (V,atms(V',r)#unkn(V,l)hl). (3) 

Lemma 5.6. V h / is closed when there exists a substitution o with dom(o) C unkn(V" h Z") such that 
V,atms(y",l")#unkn(V,l) h (V"a, I /"a). 

Definition 5.7. • Call /? = (V h / -)• r) and A = (V h / = r) closed when V h (/, r) is closed 2 . 

• Given a rewrite rule fl=(Vhl->r) and a term-in-context Ahs, write Ahi — > c t when there is 
some R" a freshened variant of R (so fresh for R, A, 5, and f)> position C and substitution such 
that 

s = C[s'] and A,atms(R") # nnftn(A, h (V"0, J& a I*0, C[r"0]«i«f). (4) 
2 Here we use pair as a term former and apply the definition above. 
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We call this (one-step) closed rewriting. 

The closed rewrite relation Ah R i — > c t is the reflexive transitive closure as in Definition 3.4. 
The choice of freshened variant of V h / in Definition 5.5 does not matter. Similarly for closed 
rewriting in Definition 5.7. This is related to the some/any property of the 1/1 -quantifier [GP01], and 
to the principle of ZFA equivariance described e.g. in [GM09a, Theorem A.4]. One way to look at 
Definitions 5.5 and 5.7 is that the atoms in V" h l" occupy a 'separate namespace'. 

Remark 5.8. Closed nominal terms and rewriting were introduced in [FGM04] . A\- s — > c t when s 
rewrites to t using a version of R where the atoms and unknowns are renamed to be fresh. Renaming 
unknowns to be fresh is standard in rewriting, where variables in a rewrite rule are assumed distinct 
from those of the terms to be rewritten. What is special about closed rewriting is that it applies a similar 
renaming to the atoms. 

So for example, h a b and h c d, but 1/ a a -^ b c b and 1/ c a -¥ d. 

A rule R is closed when, intuitively, it is equal to any freshened variant R" up to a substitution, a^b 
is not closed; the rules in [FG07] for A-calculus j3-reduction are closed; those for TT-calculus reduction 
are not closed. 

Comparing Definition 5.7 (closed rewriting) with Definition 3.4 (rewriting) we see they are very 
similar. However, there are two key differences: 

• The 7T in (1) in Definition 3.4 is not there in (4) in Definition 5.7. This % can be very expensive 
[Che04], so removing it greatly increases the efficiency of calculating closed nominal rewrites. 

• Atoms cannot 'interact by name' in a closed rewrite step, because they are renamed. 

5.2 Properties of closed rewriting, and connection with nominal algebra 

First we will prove a strengthening property for closed rewriting, for which we need some preliminary 
lemmas. 

Definition 5.9. We define the substitution o o % by: 

(ook)(X) = 7i-(o(X)) if Xedom(a) 
(oon)(X) undefined otherwise. 

Lemma 5.10. If atms(s) n nontriv(n) = then % ■ (so) = s(o o n). 

Lemma 5.11. 1. Suppose a atms(s l ',/"). Then if Ah s' ~ a /"a then there exists o' such that A h 
<j(X) & a o'(X) and a g atms(o'(X)),for all X G unkn(l K ). 

2. Suppose a ^ atms(t ,r" ,C). Then i/AhC[r"ff] « a t then there exists some o' such that Ah o(X) ss« 
o'(X) and a atms{& '(X)), for all X £ unkn(r"). 

Proof. For the first part, we construct a' by an induction on the structure of F. We sketch one case: 

• The case l" = %-X. By assumption Ah j' Pt a % • cj(X), where a nontriv{%). We choose 
o'{X) = % A -s'. 

For the second part we work by induction on the derivation of A h C[r"a] ss a t, using the rules in Figure 1 
to break down C until we reach the first case (note that ss a is symmetric). □ 

Lemma 5.12. If A h o{X) o'{X)forallX £ unkn(t) then A h to to'. 
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Proposition 5.13 (Strengthening for closed rewriting). Fix a context A and terms s and t. Suppose T is 

R 

fresh ( so ifa#X 6 T then a atms(s, t,A)). Suppose R = (V h / — >• r) is a rewrite rule. Then A, T h s — > c t 
if and only ifAhs — > c t. 

Proof. Suppose A,T h s — » c t. Unpacking definitions, there is some freshened R" (with respect to s, t, 
A,r, and R), and some position C and substitution a such that dom(a) C unkn{R") and 

s = C[s'\ A,T, atms(R") # unkn(A,s,t) h (Vff, s «« /"a, C[r"a] w a 

Using Lemmas 5.11 and 5. 12 we may assume without loss of generality that a atms(o). By elementary 
calculations on the atoms of terms and using Strengthening (Lemma 2.1 1) we deduce 

s = C[s'} A,atms(R K )#unkn(A,s,t)h (Vff, /w a f(7, C[r"a]sa«f)- 

That is, A h s — ^ c f as required. 

Conversely, suppose A\- s — > c k. We unpack definitions as before and use the Weakening Lemma 
2.13. □ 

We now establish the relationship between nominal rewriting and closed rewriting. The first result, 
Proposition 5.15 below, shows that when a rule is closed, nominal rewriting implies closed rewriting 
(this result was first shown as part of [FG07, Theorem 70]; we give a shorter proof here). The second 
result, Proposition 5.17 below relating a closed rewriting step with a nominal rewrite step, is new and is 
the key to obtain a completeness proof for closed rewriting with respect to nominal algebra. 

Lemma 5.14. A h alts if and only if A h n(a)#n ■ s. 

Proposition 5.15. IfR = (V h I— >r) is closed then A\- s t implies Ah s — > c t. 

Proof. Suppose A h s — > t. So there exist A, C, s', n, and 6 such that 

s = C[s'} and Ah(V0, s'^ a K-(W), C[n- (r0)\ w 1). 

Without loss of generality we assume unkn{6{X)) C unkn(A,s,t) for every X G dom(d) (because we 
only 'use' the part of 8 that maps I to s and r to t). 

V h I — > r is closed so by Lemma 5.6 there is a freshened variant R" = (V" h /" — >■ r") of /? and a 
substitution a such that dom(a) C unkn(R") and 

V,atms(r)#unkn(A,s,t)h (Vcj, lw a f(j, r«/ff). 

It is not hard to use our assumptions to verify that 

A,atms(r) # unkn(A,s,t) h atms{F) # unkn(A,s,t)6 . 
It follows using Lemmas 2.13 and 2.6 that 

5 = C[j'] A,atms(r)#unkn(A,s,t)h (W9, J& a ic(VaO), C[n ■ (r n od)}^ a t) . 
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By assumption the atoms in R" are fresh and so we can assume atms(R") C\nontriv(%) = 0. It follows by 
Lemmas 5.10 and 2.7 that n-{TaO) = l" ((a o d) o n) mdn-(r u (jd) = r v '((aod)on). Using Lemma 5. 14 
A,atms(r)#unkn(V,l)hV"((aod)on) also follows. Write d' for (ao0)o7i. Then 

s = C[s'] A,atms(r)#unkn(A,s,t)\- (V"6', s'*i a l"Q', C[r"0'] » B t). 

That is, A h s — > c t as required. □ 

Lemma 5.16. Suppose V\~l is a closed term-in-context where atmsiy h Z) = {ai , . . . , a„} ancf unkn(V h 
/) = {Xi , . . . ,X„}; we take these atoms and unknowns in some fixed but arbitrary order. 

Suppose is V" h l" a freshened variant o/Vh/ where atmsiy" h /") = {a",. • • an< ^ unkn(V u h 
/") = {Xj, . . . ,X,j}; we ta&e these fresh atoms and unknowns in a corresponding order. 

Let T a«<i 5 fte the permutation and substitution defined by 

T=(fl" 1 fl 1 )o...o(aJ fl „) and g = [X 1 ^T-X^,...,X n ^r-X^], 

then: 

1. l" = x-(lq). 

2. r' h V"0 if and onZj j/T' h Vg0. 

Proof. We prove the first part by induction on /. We sketch the case of % X : 

, , . . Lemma 2.5 , . , s Lemma 2.5 , . fact , 

T-(Or-X)g) = {xo%)-q(X) = (ToTrog).X = n'-X\ 

For the second part consider some a"#X" E V" (originating from a#X E V). By definition £(X) = T -X" 
and it follows that 

„ _ Lemma 2.5 . . . . _ Lemma 2.6 . _ . 

X"6 = (T-(Xg))0 = T-(Xqd). 
By Lemma 5.14 V h a"#(X"0) if and only if T' h a#(Xqd). The result follows. □ 

Proposition 5.17. = (Vhl->r) jj closed then A\- s — > c t implies there is some fresh T (so ifa#X E T 
then a afms(A, s,t)) such that A,T \- s —> t. 

Proof. If A h R s — >- c ? then for some freshened variant /?" = (V" h l" — > r") of /? (freshened with respect 
to /?, A, 5, and t) there exists some position C, term and substitution 6 such that 

,r = C[/] A,atms(R")#imkn(A,s,t)\- (V0, i'« a T9, C[r"0] «„ f). 

By Lemmas 5.16 and 2.6, there exists T and $ such that: 

* = C[j'] A,atms(R")#unkn(A,s,t)h (VqG, s' « a T • (/$0), C[t- (r£0)] 

Using Lemmas 2.7 and 2.6 we deduce A,atms(R") # unkn(A,s,t) \- s —?■ t. □ 
Definition 5.18. Ah R i -Hy ? denotes the symmetric closure of A h R s — > c t. 

Theorem 5.19 (Soundness and completeness). Suppose the rewrite theory R is a presentation (Defini- 
tion 4.1) of the equational theory T. Suppose all rules in R are closed. Then A h T s = t if and only if 
Ah R S <Ry t. 

Proof. Suppose A h T s = t. By Theorem 4.4 there is afresh T such that A, rh R s t. By Proposition 5.15 
and Strengthening (Proposition 5.13)Ah R 5 -Hy t. 

Conversely, suppose Ah R i -R- c t. By Proposition 5.17A,ri- R 5f>? for some fresh Y. It follows by 
Proposition 4.2 that A h T s = t. □ 
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5.3 Mechanising equational reasoning 

Closed nominal rewriting can be used to automate reasoning in nominal equational theories, provided 
that the theory satisfies certain conditions. 

Definition 5.20. A rewrite theory R is closed when every R G R is closed (Definition 5.7). We say that t 
is an (R-)normal form of s if A h R s — > c t and there is no u such that Ah R / — > c u (so there is no rewrite 
from t). 

A theory R is terminating when there are no infinite closed rewriting sequences A h R t\ — > c t2, ?2 — >c 
f3, It is confluent when, if A h R s — > c t and Ah R i — > c t', then u exists such that Ah R ( — > c u and 

A K R t' — > c u. 

A theory R is convergent when it is terminating and confluent. 

Theorem 5.21. Suppose the axioms in a theory T can be oriented to form a closed R. If R is confluent, 
then Ah T J = ( if and only if there exists u such that Ah R i — > c u and A h R t — ¥ c u. 

Proof. By Theorem 5.19. □ 

Theorem 5.21 does not require termination. If we have termination then we can decide whether there 
exists a term u with the desired property: it suffices to rewrite s and t to normal form and then check that 
the normal forms are a-equivalent (convergence guarantees existence and unicity of normal forms up 
to a-equivalence; a linear-time algorithm to check a -equivalence is described in [CF09]). Also, since 
Theorem 5.21 uses closed rewriting, the computation of a rewrite step is efficient: nominal matching is 
sufficient (see also [CF09] for linear-time nominal matching algorithms). 

Corollary 5.22 (Decidability of deduction in T). Suppose T is an equational theory whose axioms can 
be oriented to form a closed R. Suppose R is convergent. Then equality is decidable in T (i.e., A\~ T s = t 
is a decidable relation). 

6 Conclusions 

Efficient algorithms for closed nominal rewriting and for checking a-equivalence are described in [CF09]. 
We can also check that rules are closed in linear time, with the nominal matching algorithm of [CF09]. 
It follows from Corollary 5.22 that, had we a procedure to check that a given set of rules is convergent, 
we could directly build an automated theorem prover for nominal theories. Unfortunately, termination 
and confluence are undecidable properties even for first order rules. Fortunately, closed nominal rewrite 
rules inherit many of the good properties of first-order rewriting systems: orthogonality is a sufficient 
condition for confluence (see [FGM04]) and it is easy to check. If the theory under consideration is not 
orthogonal, then the alternative is to check termination and to check that all critical pairs are joinable 
(which is a sufficient condition for convergence, see [FGM04]). Reduction orderings (to check termi- 
nation) and completion procedures (to ensure that all critical pairs are joinable) are available for closed 
nominal rules [FRIO]. 

We can consider a recent 'permissive'' variant of nominal terms [DGM09, GM09b]. These eliminate 
freshness contexts and give a tighter treatment of a-equivalence, which might simplify the proofs here. 
Permissive nominal terms have been implemented in prototype form [Mul09], but it remains to consider 
more efficient algorithms to manipulate them. 
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